sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-26 10:04:02 +03:00
Code
115,406 Commits 60 Branches 1,146 Tags
Commit Graph

21 Commits

Author SHA1 Message Date
Gary Lockyer
5c0345ea9b samdb: Add remote address to connect 
Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
 2018-05-10 20:02:23 +02:00
Stefan Metzmacher
654d63b94b s4:rpc_server/lsa: implement the policy security descriptor 
We now check the requested access mask in OpenPolicy*()
and return NT_STATUS_ACCESS_DENIED if the request is not granted.

E.g. validating a domain trust via the Windows gui requires this
in order prompt the user for the credentials. Otherwise
we fail any other call with ACCESS_DENIED later and the
gui just displays a strange error message.

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
 2015-03-30 13:41:25 +02:00
Stefan Metzmacher
bc4c7d4c1e s4:rpc_server: make use of dcerpc_binding_get_transport() 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
 2014-02-13 11:54:17 +01:00
Andreas Schneider
1744e99d0a s4-lsarpc: DCERPC_FAULT_ACCESS_DENIED for np 2012-07-06 10:00:58 +02:00
Andrew Bartlett
94a59b781c s4-auth Remove event context from privilage database handling 
These local TDB operations can quite safely be handled in a new/nested
event context, rather than using the main event context.

Andrew Bartlett
 2010-12-21 15:10:38 +11:00
Jelmer Vernooij
93126b3315 samdb: Add flags argument to samdb_connect(). 2010-10-10 23:08:49 +02:00
Andrew Tridgell
6b266b85cf s4-loadparm: 2nd half of lp_ to lpcfg_ conversion 
this converts all callers that use the Samba4 loadparm lp_ calling
convention to use the lpcfg_ prefix.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-16 18:24:27 +10:00
Matthias Dieter Wallnöfer
ad9e407357 Revert "s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions" 
We should use the "ldb_get_*_basedn" calls since they are available in the LDB
library.
 2010-04-13 08:55:15 +02:00
Matthias Dieter Wallnöfer
98ce053efd s4:prefer "samdb_*_dn" basedn calls over the "ldb_get_*_dn" functions 
Purely cosmetic change.
 2010-04-12 18:49:01 +02:00
Andrew Tridgell
95e895d880 s4: ran minimal_includes.pl on source4/rpc_server 2009-10-20 16:04:56 +11:00
Andrew Tridgell
30be3fd143 s4-privileges: moved privileges to private/privilege.ldb 
We were storing privileges in the sam, which was OK when we were a
standalone DC, but is no good when we replicate with a windows DC.

This moves the privileges to a separate (local) database
 2009-10-17 13:01:02 +11:00
Andrew Bartlett
6ef65389fd Don't use crossRef records to find our own domain 
A single AD server can only host a single domain, so don't stuff about
with looking up our crossRef record in the cn=Partitions container.
We instead trust that lp_realm() and lp_workgroup() works correctly.

Andrew Bartlett
 2009-05-26 12:37:09 +10:00
Andrew Tridgell
dab5d4abbc cope with NULL attr 2008-09-30 08:46:22 -07:00
Andrew Tridgell
28482efa5c WSPP docs say we need to check that root_dir is NULL 2008-09-29 16:51:05 -07:00
Simo Sorce
508527890a Merge ldb_search() and ldb_search_exp_fmt() into a simgle function. 
The previous ldb_search() interface made it way too easy to leak results,
and being able to use a printf-like expression turns to be really useful.
 2008-09-23 18:17:46 -04:00
Jelmer Vernooij
21fc767378 Specify event_context to ldb_wrap_connect explicitly. 
(This used to be commit b4e1ae07a284c044704322446c94351c2decff91)
 2008-04-17 12:23:44 +02:00
Kai Blin
c9fa788ca2 rpc_server: Remove references to sidmap from the lsa pipe code. 
(This used to be commit 25cbb1b76720a271984ad5c023e45476094562f1)
 2008-04-02 23:07:00 +02:00
Jelmer Vernooij
57f20ccd24 r26296: Store loadparm context in DCE/RPC server context. 
(This used to be commit fc1f4d2d65d4c983cba5421e7ffb64dd75482860)
 2007-12-21 05:48:13 +01:00
Jelmer Vernooij
51db4c3f3d r26228: Store loadparm context in auth context, move more loadparm_contexts up the call stack. 
(This used to be commit ba75f1613a9aac69dd5df94dd8a2b37820acd166)
 2007-12-21 05:47:05 +01:00
Jelmer Vernooij
f4a1083cf9 r26227: Make loadparm_context part of a server task, move loadparm_contexts further up the call stack. 
(This used to be commit 0721a07aada6a1fae6dcbd610b8783df57d7bbad)
 2007-12-21 05:47:04 +01:00
Andrew Bartlett
08c97435d3 r25194: A major rework of the Samba4 LSA LookupNames and LookupSids code, with 
a new torture suite to match.

This should fix bug #4954 by Matthias Wallnöfer <mwallnoefer@yahoo.de>

Previously we had no knowlege of BUILTIN or well-known names.

This code needs expansion to check with winbind for trusted domains.

Andrew Bartlett
(This used to be commit e6fc0e1f54ad64bdddc88e9ebd0d8d181b6ce26a)
 2007-10-10 15:06:51 -05:00